CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

26 matches found

ATTACKERKB•added 2026/05/27 9:49 a.m.•4 views

CVE-2026-42738

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ZAYTECH Smart Online Order for Clover clover-online-orders allows Stored XSS.This issue affects Smart Online Order for Clover: from n/a through = 1.6.0...

7.1CVSS5.8AI score0.00036EPSS

Exploits0References2

Positive Technologies•added 2026/05/27 12:0 a.m.•2 views

PT-2026-43650

7.1CVSS5.8AI score0.00036EPSS

Exploits0References2

RedhatCVE•added 2026/04/16 7:22 p.m.•1 views

CVE-2025-15635

Cross-Site Request Forgery CSRF vulnerability in ZAYTECH Smart Online Order for Clover clover-online-orders allows Cross Site Request Forgery.This issue affects Smart Online Order for Clover: from n/a through = 1.6.0...

4.3CVSS5.8AI score0.00017EPSS

Exploits0References1

NVD•added 2026/04/15 5:17 p.m.•0 views

CVE-2025-15635

4.3CVSS0.00017EPSS

Exploits0References1

ATTACKERKB•added 2026/04/15 3:49 p.m.•0 views

CVE-2025-15635

Cross-Site Request Forgery CSRF vulnerability in Zaytech Smart Online Order for Clover allows Cross Site Request Forgery.This issue affects Smart Online Order for Clover: from n/a through 1.6.0...

4.3CVSS5.8AI score0.00017EPSS

Exploits0References2

Positive Technologies•added 2026/04/15 12:0 a.m.•1 views

PT-2026-33079

Name of the Vulnerable Software and Affected Versions Smart Online Order for Clover versions n/a through 1.6.0 Description A Cross-Site Request Forgery CSRF flaw allows an attacker to induce a user to perform actions they did not intend to do. Recommendations At the moment, there is no informatio...

4.3CVSS5.2AI score0.00017EPSS

Exploits0References6

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-26154

Malicious code in bioql PyPI...

6.5CVSS8.6AI score0.00081EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 10:49 a.m.•8 views

CVE-2024-43253

Missing Authorization vulnerability in ZAYTECH Smart Online Order for Clover clover-online-orders.This issue affects Smart Online Order for Clover: from n/a through = 1.5.6...

9.8CVSS5.9AI score0.00459EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 10:0 a.m.•5 views

CVE-2024-29115

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Zaytech Smart Online Order for Clover allows Stored XSS.This issue affects Smart Online Order for Clover: from n/a through 1.5.5...

6.5CVSS8.6AI score0.00081EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 7:40 a.m.•4 views

CVE-2024-31238

Cross-Site Request Forgery CSRF vulnerability in Zaytech Smart Online Order for Clover.This issue affects Smart Online Order for Clover: from n/a through 1.5.5...

8.8CVSS8.5AI score0.00056EPSS

Exploits0References1

OSV•added 2024/11/01 3:15 p.m.•1 views

CVE-2024-43254

Missing Authorization vulnerability in Zaytech Smart Online Order for Clover allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Smart Online Order for Clover: from n/a through 1.5.6...

8.8CVSS5.8AI score0.00357EPSS

Exploits0References1

NVD•added 2024/11/01 3:15 p.m.•7 views

CVE-2024-43253

Missing Authorization vulnerability in ZAYTECH Smart Online Order for Clover clover-online-orders.This issue affects Smart Online Order for Clover: from n/a through = 1.5.6...

9.8CVSS0.00459EPSS

Exploits0References1

NVD•added 2024/11/01 3:15 p.m.•10 views

CVE-2024-43254

Missing Authorization vulnerability in ZAYTECH Smart Online Order for Clover clover-online-orders.This issue affects Smart Online Order for Clover: from n/a through = 1.5.6...

8.8CVSS0.00357EPSS

Exploits0References1

OSV•added 2024/11/01 3:15 p.m.•0 views

CVE-2024-43253

Missing Authorization vulnerability in Zaytech Smart Online Order for Clover allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Smart Online Order for Clover: from n/a through 1.5.6...

9.8CVSS5.8AI score0.00459EPSS

Exploits0References1

CVE•added 2024/11/01 2:17 p.m.•38 views

CVE-2024-43253

CVE-2024-43253 describes a Missing Authorization vulnerability in the WordPress plugin “Smart Online Order” for Clover (Zaytech). The issue allows accessing functionality not properly constrained by ACLs. Affected range: Clover Online Orders from n/a through 1.5.6. Public references indicate a hi...

9.8CVSS5.9AI score0.00459EPSS

Exploits0References1Affected Software1

CVE•added 2024/11/01 2:17 p.m.•36 views

CVE-2024-43254

CVE-2024-43254 affects the WordPress plugin Clover Online Orders (Smart Online Order for Clover). The connected docs identify a Missing Authorization issue due to misconfigured access control in Smart Online Order for Clover up to version 1.5.6. The Wordfence/CVE entries note the vulnerability as...

8.8CVSS5.9AI score0.00357EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2024/11/01 12:0 a.m.•2 views

PT-2024-30415 · Zaytech · Zaytech Smart Online Order For Clover

Name of the Vulnerable Software and Affected Versions: Zaytech Smart Online Order for Clover versions 1.5.6 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows accessing functionality not properly constrained by ACLs. Recommendations: For versions...

9.8CVSS6.5AI score0.00459EPSS

Exploits0References4

CVE•added 2024/04/12 1:0 p.m.•53 views

CVE-2024-31238

CVE-2024-31238 is a Cross‑Site Request Forgery (CSRF) vulnerability in the WordPress plugin “Smart Online Order for Clover” (by Zaytech). The CVE descriptor states the issue affects Smart Online Order for Clover versions from n/a up to 1.5.5. The available connected documents consistently describ...

8.8CVSS8.5AI score0.00056EPSS

Exploits0References1Affected Software1

NVD•added 2024/03/19 3:15 p.m.•10 views

CVE-2024-29115

6.5CVSS6.5AI score0.00081EPSS

Exploits0References1

OSV•added 2024/03/19 3:15 p.m.•0 views

CVE-2024-29115

5.4CVSS7.3AI score

Exploits0References1

Rows per page